ROAC: A Role-Oriented Access Control Model - Information Security Theory and Practice Access content directly
Conference Papers Year : 2012

ROAC: A Role-Oriented Access Control Model


Role-Based Access Control (RBAC) has become the de facto standard for realizing authorization requirements in a wide range of organizations. Existing RBAC models suffer from two main shortcomings; lack of expressiveness of roles/permissions and ambiguities of their hierarchies. Roles/permissions expressiveness is limited since roles do not have the ability to express behaviour and state, while hierarchical RBAC cannot reflect real organizational hierarchies. In this paper, we propose a novel access control model: The Role-Oriented Access Control Model (ROAC), which is based on the concepts of RBAC but inspired by the object-oriented paradigm. ROAC greatly enhances expressiveness of roles and permissions by introducing parameters and methods as members. The hierarchical ROAC model supports selective inheritance of permissions.
Fichier principal
Vignette du fichier
978-3-642-30955-7_11_Chapter.pdf (225.27 Ko) Télécharger le fichier
Origin : Files produced by the author(s)

Dates and versions

hal-01534310 , version 1 (07-06-2017)





Nezar Nassr, Eric Steegmans. ROAC: A Role-Oriented Access Control Model. 6th International Workshop on Information Security Theory and Practice (WISTP), Jun 2012, Egham, United Kingdom. pp.113-127, ⟨10.1007/978-3-642-30955-7_11⟩. ⟨hal-01534310⟩
135 View
179 Download



Gmail Facebook X LinkedIn More